nano-pdf
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the 'nano-pdf' package from the public PyPI registry using the uv installer.- [COMMAND_EXECUTION]: The skill executes the 'nano-pdf' command-line interface to perform edits on local PDF files.- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it processes external PDF files and user-provided instructions without explicit sanitization or boundary markers.
- Ingestion points: Processes user-provided natural language instructions and PDF file content via CLI arguments in the SKILL.md file.
- Boundary markers: No specific delimiters or safety instructions are present in the command template to prevent the CLI from interpreting content within the PDF as instructions.
- Capability inventory: Performs subprocess execution of the 'nano-pdf' binary which accesses the local file system.
- Sanitization: No evidence of input validation or content filtering for the provided instructions or PDF data.
Audit Metadata